Information Security Manager

Robert Half are working with an existing multi-national enterprise client in the Greater Bristol area to recruit an Information Security Manager on a permanent basis.

The key candidate will be responsible for scoping, implementing, monitoring, and maintaining IT security systems, they will be able to ensure compliance standards, strategy and reporting is carried out across all part of the group. They will be supporting the IT team and the business by being a trusted advisor in all aspects of IT security and IT compliance. They will be responsible for delivery of pragmatic, high quality, secure, cost-effective security solutions.

Key Accountabilities

• Ensure IT Security systems are secure and fit for purpose.
• Work with key stakeholders in the business, IT team and externally where required.
• In conjunction with the Head of Technology, set objectives, establish priorities and develop plans.
• Arrange work schedules and prioritise accordingly to meet agreed deadlines.
• Prepare and present proposals and benefits cases as working documents for senior management review on a monthly ongoing basis within an annual planning horizon.
• Implement approved proposals, managing functional input, where appropriate.
• Scope, implement, monitor and maintain IT Security systems.
• Support the wider IT team, and the business, by being a trusted advisor for all IT security and IT compliance matters.
• Perform due diligence and sign-off for all IT Security and Compliance related matters.
• IT Security patching strategy, reporting and compliance.
• Ensure IT Security and compliance systems are developed and maintained to the highest possible level.
• Work closely with, and under the direction of, the Business Area Regional Information Security Officer and their team.
• Adherence to, and liaison with Group Internal and External Audit requirements and standards.
• Maintain external IT Security certifications as required by the business.
• Implement and maintain information security policies and procedures.
• Ownership of data security and application security standards.
• Complete regular vulnerability scanning and required remedial actions.
• Ownership of the phishing strategy, campaigns, communications and remedial actions.
• Deliver tasks and programmes, on time, on cost, to high quality standards.
• Create and maintain appropriate documentation and standards.
• Share knowledge with IT team members and other stakeholders.
• Maintain third-party vendor, hardware and software relationships related to IT Security.
• Adhere to department policies and procedures and assist in the implementation of new processes.
• Ensure quality standards are adhered to by self and fellow members of the team.

Capabilities, Skills and Experience Required

• Excellent IT security knowledge. (CISM, NIST, etc)
• Working knowledge of GDPR and PCI-DSS.
• Hands-on approach.
• Excellent team leadership skills (communication, prioritisation, delegation, planning, etc.)
• Quality of work - Demonstrates a high degree of attention to detail, thoroughness and a methodical approach to work.
• Works at a pace that matches the requirements of the business and recognises the importance of timely completion of tasks.
• Communication & interpersonal skills - Ability to listen and understand information. Presents information in a clear and concise manner to both technical and non-technical people. Knows appropriate way of communicating with customers, peers and line managers. Demonstrates respect for all individuals in all forms of communication. Treat people fairly and courteously regardless of background or culture
• Initiative - Monitors and manages own time to ensure daily, and long-term objectives are met. Develops and improves procedures in agreement with line manager. Accepts additional challenges and responsibilities willingly and assists others.
• Self-reliance. Captures cross departmental analysis and detailed feedback from the Management team for review.
• Planning & organisation - Adapts to changes and uses resources effectively. Able to prioritise and execute competing activities and prioritise and delegate effectively.
• Budgetary competence.
• Demonstrable knowledge of the operational ITIL Service Management framework.
• Experience developing solutions based on best of breed products.
• Create and maintain strong relationships with fellow team members, key stakeholders, and external suppliers.
• Strong interpersonal skills and an excellent understanding of customer service.
• A professional and mature attitude to deal with a range of internal and external stakeholders.

Desirable

• Key vendor and/or relevant industry standard qualifications eg CISSP, CISM, Comptia Security etc.
• Working knowledge of CrowdStrike, Cisco, Microsoft, Dell, etc

Salary/Logistics

• £60,000-£65,000
• Hybrid working - 3 days in Avonmouth office, 2 days WFH
• Company bonus scheme

Robert Half Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Robert Half is committed to equal opportunity and diversity. Suitable candidates with equivalent qualifications and more or less experience can apply. Rates of pay and salary ranges are dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data:

Security alert: scammers are currently targeting jobseekers. Robert Half do not ask candidates for a fee or request candidates to send applications through instant messaging services such as WhatsApp or Telegram. Learn how to protect yourself by visiting our website: